Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/N9eFjb9lNMkFxZ5AGmCT58aT4fg.roa
File: N9eFjb9lNMkFxZ5AGmCT58aT4fg.roa (raw, json)
Hash identifier: jjxZLrKxy8nL8OgsTPD+TlBgHBU+5dFwZ9hNzyorucQ=
Subject key identifier: 37:D7:85:8D:BF:65:34:C9:05:C5:9E:40:1A:60:93:E7:C6:93:E1:F8
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 018FB8F6567ED882CADF07FC6A809D7DB751
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/N9eFjb9lNMkFxZ5AGmCT58aT4fg.roa
Signing time: Mon 27 May 2024 07:31:42 +0000
ROA not before: Mon 27 May 2024 07:31:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25369
IP address blocks: 147.136.64.0/24 maxlen: 24
168.199.132.0/24 maxlen: 24
168.199.186.0/24 maxlen: 24
168.199.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 May 2024 15:14:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b8:f6:56:7e:d8:82:ca:df:07:fc:6a:80:9d:7d:b7:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: May 27 07:31:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=37d7858dbf6534c905c59e401a6093e7c693e1f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:42:aa:e1:81:77:9e:91:35:d5:38:fa:65:bd:
10:64:ce:4d:22:07:d9:2d:57:7d:c5:a9:1d:92:91:
eb:b6:42:41:47:ab:b6:2e:cd:90:fb:aa:5b:81:45:
fd:fc:7a:53:30:04:8b:00:61:04:e5:48:61:09:43:
fd:f2:66:8d:7c:d5:96:05:54:58:05:3c:cb:f6:f2:
5f:41:f2:a7:76:9e:f3:33:27:e2:12:1b:fc:36:22:
f2:a4:a8:92:83:5f:cb:0e:a3:14:08:7b:d8:02:58:
a2:68:17:a6:bc:41:45:2a:dc:23:30:78:22:c2:1c:
be:53:0a:3b:55:01:50:dc:93:8b:4d:8e:75:bd:f8:
8c:92:8d:96:f3:7a:85:de:05:5d:d6:bc:8e:8b:2b:
50:fe:8b:bd:c4:fd:89:b0:21:0e:3e:ca:35:e3:3a:
56:a2:e3:7e:82:9f:98:78:2b:85:a4:31:81:51:39:
0a:37:dc:e5:44:7f:ae:8a:39:7e:86:2c:29:66:6e:
5b:73:0f:1c:a0:2b:07:c2:f0:d4:1a:97:23:aa:52:
ee:30:17:cd:31:15:3e:84:bb:cd:66:a2:96:f1:ac:
13:de:3a:94:2f:b6:c2:42:b6:d8:57:ba:66:44:4e:
d7:e8:fb:0c:bd:81:09:a2:b4:2d:0c:6b:ad:5f:62:
52:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:D7:85:8D:BF:65:34:C9:05:C5:9E:40:1A:60:93:E7:C6:93:E1:F8
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/N9eFjb9lNMkFxZ5AGmCT58aT4fg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.136.64.0/24
168.199.132.0/24
168.199.186.0/24
168.199.227.0/24
Signature Algorithm: sha256WithRSAEncryption
70:22:ea:97:40:ec:f0:6b:0a:36:1d:c8:52:71:3f:bd:52:de:
41:54:c9:13:59:43:8d:33:64:43:1b:36:d3:0b:1f:9c:91:29:
27:c8:55:61:ad:23:29:3e:20:87:f5:71:ef:b1:c3:f9:31:85:
a7:94:b0:10:3c:ab:d0:1c:cc:8a:7a:8d:0b:1c:36:1b:82:3d:
99:dc:ee:78:3b:d4:43:f4:ad:35:63:4f:bc:1f:51:31:14:0f:
af:22:2f:8b:17:44:ab:87:8a:15:db:48:9f:71:1e:c8:4c:98:
08:cb:78:64:02:8c:b7:ab:c5:75:a5:3c:18:8f:44:3c:37:68:
6d:24:2c:d0:8f:e8:1f:0c:8b:b0:db:54:78:03:29:24:31:59:
92:09:7e:d9:04:df:f3:d4:25:2b:dc:7b:d4:f8:fc:ac:e6:e9:
d4:a2:9d:78:d9:7a:f4:30:ae:7a:c7:f4:ea:61:80:03:25:f0:
6c:0e:46:52:8d:c9:60:61:96:05:f5:03:f2:2a:16:4e:e6:25:
63:b2:53:d8:bb:5c:d8:09:f1:f0:19:e8:8a:78:54:1a:e3:90:
59:8e:db:d9:16:af:7f:e3:44:53:2b:cb:9b:2e:36:53:09:05:
9c:b9:01:8b:ca:ea:32:d3:04:a9:b0:98:de:c6:9f:3c:08:11:
85:61:31:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:50 2024 by rpki-client on console-fra.rpki-client.org